← Back to Skills Marketplace
1887
Downloads
0
Stars
10
Active Installs
1
Versions
Install in OpenClaw
/install openclaw-credential-manager
Description
MANDATORY security foundation for OpenClaw. Consolidate scattered API keys and credentials into a secure .env file with proper permissions. Includes GPG encryption for high-value secrets, credential rotation tracking, deep scanning, and backup hardening. Use when setting up OpenClaw, migrating credentials, auditing security, or enforcing the .env standard. This is not optional — centralized credential management is a core requirement for secure OpenClaw deployments.
Usage Guidance
This package contains real scripts that will scan your home directory for credentials, merge them into ~/.openclaw/.env, encrypt selected keys, and may delete the scattered credential files after backing them up. Before running anything: 1) Inspect the bundled scripts yourself (you have them) and confirm you trust the author — we see a hardcoded example path (/home/phan_harry) in docs which suggests the package was tailored or copied from another environment. 2) Do not run destructive commands yet — run scan.py and consolidate.py with dry-run/--backup-only modes and don't pass --confirm/--yes until you review backups. 3) Ensure 'gpg' is installed and understand the encryption model: this uses symmetric GPG (-c) with a passphrase (OPENCLAW_GPG_PASSPHRASE allowed) — supplying the passphrase via env var contradicts some documentation and can be insecure; prefer interactive entry or a secure secret manager. 4) Check backups produced in ~/.openclaw/backups before any cleanup and verify file permissions. 5) Consider alternatives (OS keyring/secret manager) for automated services that can't safely keep a GPG passphrase. If you want, I can: list the exact filesystem operations each script will perform, point out every place the code can delete or overwrite files, or produce a recommended safe run sequence (commands + flags) to evaluate outputs without destruction.
Capability Analysis
Type: OpenClaw Skill
Name: openclaw-credential-manager
Version: 2.0.0
The OpenClaw Credential Manager skill is designed to enhance the security posture of an OpenClaw deployment by centralizing, securing, and managing credentials. All scripts and documentation consistently focus on security best practices, such as enforcing file permissions (600 for files, 700 for directories), GPG encryption for high-value secrets, git-ignore protection, deep scanning for hardcoded secrets, and credential rotation tracking. The `CHANGELOG.md` explicitly details fixes for critical security vulnerabilities (e.g., backup file permissions) in version 2.0.0, indicating a proactive security-conscious development. While the skill handles sensitive data and modifies system configurations (like GPG agent settings), these actions are directly aligned with its stated purpose of securing credentials and do not show any evidence of intentional malicious behavior, data exfiltration, unauthorized remote control, or obfuscation for harmful purposes. The strong language in `SKILL.md` and `CORE-PRINCIPLE.md` serves to enforce security policies on the agent and user, not to prompt-inject for malicious actions.
Capability Assessment
Purpose & Capability
The files and scripts align with a credential-consolidation tool (scan, consolidate, backup, encrypt, validate, cleanup). However there are mismatches: the SKILL metadata declares no required binaries/env but the code expects GPG (calls 'gpg') and uses an OPENCLAW_GPG_PASSPHRASE env var for automation. CONSOLIDATION-RULE.md also contains a hardcoded example path (/home/phan_harry/.openclaw/.env) which is inconsistent with the code that uses Path.home(). These are plausibly sloppy/documentation issues but are meaningful because they affect execution and safety.
Instruction Scope
Runtime instructions and included scripts scan many locations across the home directory (~/.config, ~/.local/share, workspace/skills, ~/.env, etc.), back up and then remove or delete scattered credential files as part of cleanup. That is within the stated purpose, but it's intrusive: cleanup.py can permanently delete files (requires explicit confirmation but has a --force flag), and consolidate.py writes/overwrites ~/.openclaw/.env and may replace plaintext keys with GPG placeholders. Also documentation prohibits credentials via environment variables/CLI in CORE-PRINCIPLE.md yet encrypt.py accepts OPENCLAW_GPG_PASSPHRASE via env var — a contradiction that could encourage insecure automation. Review and test in dry-run modes before any destructive step.
Install Mechanism
There is no install spec (instruction-only skill), which minimizes remote-code-fetch concerns. The package includes multiple local scripts (Python + shell) that will be executed by the user/agent. Because code is bundled, there is no network download at install time; still, those scripts will run arbitrary filesystem operations when invoked.
Credentials
The skill requests no credentials in metadata, but it intentionally scans for and consolidates a very wide range of secrets (AWS, GCP, DBs, wallets, OpenAI keys, Telegram/Discord tokens, etc.). That broad access is consistent with its purpose, yet it is high-privilege: the tool collects, moves, and can delete many different credential types. The use of OPENCLAW_GPG_PASSPHRASE env var (for automation) contradicts the 'never accept credentials from environment variables' rule in CORE-PRINCIPLE.md. Also the symmetric GPG approach requires a passphrase that must be protected — if provided by env var or stored insecurely it creates an exfiltration risk.
Persistence & Privilege
The skill is not marked always:true and does not request permanent agent-level privileges. It does create ~/.openclaw/ files (.env, .env.secrets.gpg, .env.meta, backups) and updates ~/.openclaw/.gitignore; that is expected for a credential manager. It does not appear to modify other skills' configs, but its enforcement language ("This is not optional") and the presence of an 'enforce' module that can refuse execution of other code until the .env policy is met means it could become operationally blocking; consider this behavioral impact when adopting.
How to Use
- Make sure OpenClaw is installed (local or Docker)
- Run the install command in chat:
/install openclaw-credential-manager - After installation, invoke the skill by name or use
/openclaw-credential-manager - Provide required inputs per the skill's parameter spec and get structured output
Version History
v2.0.0
GPG encryption for high-value secrets, deep scanning for hardcoded credentials, rotation tracking with risk-based schedules, backup hardening, and comprehensive security validation
Metadata
Frequently Asked Questions
What is OpenClaw Credential Manager?
MANDATORY security foundation for OpenClaw. Consolidate scattered API keys and credentials into a secure .env file with proper permissions. Includes GPG encryption for high-value secrets, credential rotation tracking, deep scanning, and backup hardening. Use when setting up OpenClaw, migrating credentials, auditing security, or enforcing the .env standard. This is not optional — centralized credential management is a core requirement for secure OpenClaw deployments. It is an AI Agent Skill for Claude Code / OpenClaw, with 1887 downloads so far.
How do I install OpenClaw Credential Manager?
Run "/install openclaw-credential-manager" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.
Is OpenClaw Credential Manager free?
Yes, OpenClaw Credential Manager is completely free (open-source). You can download, install and use it at no cost.
Which platforms does OpenClaw Credential Manager support?
OpenClaw Credential Manager is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).
Who created OpenClaw Credential Manager?
It is built and maintained by TeeClaw (@teeclaw); the current version is v2.0.0.
More Skills